164.52.42.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
164.52.42.6	attack	May 24 05:41:23 web01.agentur-b-2.de postfix/smtpd[512662]: NOQUEUE: reject: RCPT from unknown[164.52.42.6]: 554 5.7.1 Service unavailable; Client host [164.52.42.6] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/164.52.42.6; from= to= proto=ESMTP helo= May 24 05:41:24 web01.agentur-b-2.de postfix/smtpd[512662]: NOQUEUE: reject: RCPT from unknown[164.52.42.6]: 554 5.7.1 Service unavailable; Client host [164.52.42.6] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/164.52.42.6; from= to= proto=ESMTP helo= May 24 05:41:30 web01.agentur-b-2.de postfix/smtpd[512662]: NOQUEUE: reject: RCPT from unknown[164.52.42.6]: 554 5.7.1 Service unavailable; Client host [164.52.42.6] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/16	2020-05-24 20:08:10
164.52.42.134	attack	firewall-block, port(s): 1521/tcp	2019-11-21 21:50:49
164.52.42.134	attackbotsspam	11/11/2019-23:43:34.705122 164.52.42.134 Protocol: 6 ET SCAN Suspicious inbound to Oracle SQL port 1521	2019-11-12 07:22:49
164.52.42.6	attackbotsspam	Unauthorized connection attempt from IP address 164.52.42.6 on Port 445(SMB)	2019-10-26 02:11:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.52.42.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62338
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.52.42.2.			IN	A

;; AUTHORITY SECTION:
.			507	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 14:46:04 CST 2022
;; MSG SIZE  rcvd: 104

Host info

b'Host 2.42.52.164.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

server can't find 164.52.42.2.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.64.77.154	attack	Mar 30 06:51:48 silence02 sshd[21539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.77.154 Mar 30 06:51:50 silence02 sshd[21539]: Failed password for invalid user ofv from 212.64.77.154 port 58442 ssh2 Mar 30 06:56:55 silence02 sshd[22185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.77.154	2020-03-30 12:58:53
136.232.13.114	attackspam	Unauthorized connection attempt detected from IP address 136.232.13.114 to port 1433	2020-03-30 13:15:23
202.43.146.107	attack	" "	2020-03-30 13:13:37
36.77.93.181	attackbots	1585540561 - 03/30/2020 05:56:01 Host: 36.77.93.181/36.77.93.181 Port: 445 TCP Blocked	2020-03-30 13:05:54
27.3.65.65	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-30 13:04:57
107.170.20.247	attackbotsspam	Mar 30 07:00:15 nextcloud sshd\[12637\]: Invalid user heroin from 107.170.20.247 Mar 30 07:00:15 nextcloud sshd\[12637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.20.247 Mar 30 07:00:16 nextcloud sshd\[12637\]: Failed password for invalid user heroin from 107.170.20.247 port 34960 ssh2	2020-03-30 13:08:27
94.102.56.215	attackspambots	94.102.56.215 was recorded 21 times by 12 hosts attempting to connect to the following ports: 1034,1037,922. Incident counter (4h, 24h, all-time): 21, 121, 9178	2020-03-30 13:02:13
118.25.133.121	attack	Mar 29 21:50:59 server1 sshd\[28487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.133.121 Mar 29 21:51:01 server1 sshd\[28487\]: Failed password for invalid user guang from 118.25.133.121 port 48086 ssh2 Mar 29 21:55:44 server1 sshd\[29927\]: Invalid user mhp from 118.25.133.121 Mar 29 21:55:44 server1 sshd\[29927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.133.121 Mar 29 21:55:46 server1 sshd\[29927\]: Failed password for invalid user mhp from 118.25.133.121 port 43844 ssh2 ...	2020-03-30 13:23:17
60.190.251.10	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-30 13:27:51
136.255.144.2	attack	Mar 30 06:27:53 ns381471 sshd[9985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.255.144.2 Mar 30 06:27:55 ns381471 sshd[9985]: Failed password for invalid user xdu from 136.255.144.2 port 45514 ssh2	2020-03-30 13:03:46
101.230.236.177	attackspam	2020-03-30T05:07:49.061915homeassistant sshd[15846]: Invalid user benito from 101.230.236.177 port 43240 2020-03-30T05:07:49.068657homeassistant sshd[15846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.230.236.177 ...	2020-03-30 13:09:17
45.142.195.2	attackspambots	Mar 30 07:05:23 relay postfix/smtpd\[17341\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:06:01 relay postfix/smtpd\[11654\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:06:13 relay postfix/smtpd\[17341\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:06:50 relay postfix/smtpd\[9670\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:07:03 relay postfix/smtpd\[9671\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-30 13:12:44
58.23.16.254	attackbotsspam	Mar 30 06:20:18 h2646465 sshd[892]: Invalid user christian from 58.23.16.254 Mar 30 06:20:18 h2646465 sshd[892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.23.16.254 Mar 30 06:20:18 h2646465 sshd[892]: Invalid user christian from 58.23.16.254 Mar 30 06:20:20 h2646465 sshd[892]: Failed password for invalid user christian from 58.23.16.254 port 56442 ssh2 Mar 30 06:38:23 h2646465 sshd[3957]: Invalid user patalano from 58.23.16.254 Mar 30 06:38:23 h2646465 sshd[3957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.23.16.254 Mar 30 06:38:23 h2646465 sshd[3957]: Invalid user patalano from 58.23.16.254 Mar 30 06:38:26 h2646465 sshd[3957]: Failed password for invalid user patalano from 58.23.16.254 port 3417 ssh2 Mar 30 06:41:59 h2646465 sshd[4785]: Invalid user eux from 58.23.16.254 ...	2020-03-30 12:54:42
190.128.91.108	attack	Mar 30 05:55:54 localhost sshd[14192]: Invalid user applmgr from 190.128.91.108 port 50331 ...	2020-03-30 13:16:27
106.240.234.114	attack	SSH brute-force attempt	2020-03-30 13:31:35

Recently Reported IPs

164.61.195.99	164.58.136.118	164.52.50.10	164.58.235.130
164.52.28.62	164.64.46.10	164.68.102.73	164.68.101.53
164.68.102.83	164.59.208.14	164.68.103.166	164.68.104.198
164.68.105.158	164.68.106.145	164.68.107.186	164.68.110.196
164.68.108.67	164.68.106.97	164.68.110.142	164.68.112.155